Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.mft
File:                     dnhiXZFU_N8bAApD0fiS-x1Yg2k.mft (raw, json)
Hash identifier:          mc/mxd8iZJJAGKgKSN2xKtrHNcfl30ObinqN7h/xX7g=
Subject key identifier:   9F:12:C2:6E:FB:16:E2:FF:F8:89:6B:F3:E6:58:C4:AC:85:70:C2:D1
Authority key identifier: 76:78:62:5D:91:54:FC:DF:1B:00:0A:43:D1:F8:92:FB:1D:58:83:69
Certificate issuer:       /CN=A9180DF5/serialNumber=7678625D9154FCDF1B000A43D1F892FB1D588369
Certificate serial:       05A9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhiXZFU_N8bAApD0fiS-x1Yg2k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.mft
Manifest number:          05A6
Signing time:             Fri 22 Nov 2024 22:43:06 +0000
Manifest this update:     Fri 22 Nov 2024 22:43:05 +0000
Manifest next update:     Fri 29 Nov 2024 22:43:05 +0000
Files and hashes:         1: dnhiXZFU_N8bAApD0fiS-x1Yg2k.crl (hash: C6/Ofo/8axkuJ5FWOtYRCymypiYsXCUrP7M5F2d2vjw=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.crl
                          rsync://rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhiXZFU_N8bAApD0fiS-x1Yg2k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Nov 2024 20:43:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1449 (0x5a9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9180DF5/serialNumber=7678625D9154FCDF1B000A43D1F892FB1D588369
        Validity
            Not Before: Nov 22 22:43:05 2024 GMT
            Not After : Nov 29 22:43:05 2024 GMT
        Subject: CN=674108f9-2c83
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:70:52:00:93:3d:40:14:fc:06:aa:a1:68:1e:
                    bd:7e:20:12:66:0f:72:73:05:08:98:87:7a:7e:6f:
                    6f:e1:a3:40:e9:89:9a:d3:44:2f:1a:72:bd:84:bf:
                    dc:da:b4:df:b4:85:7b:d1:eb:bb:7d:09:78:cb:0a:
                    18:6d:56:e1:25:ea:38:a2:d6:a4:7a:1d:a8:7b:b2:
                    20:89:2f:3e:ec:4f:dc:bf:15:ed:fe:01:57:c8:0c:
                    e5:70:b8:8c:b7:17:c5:aa:5a:b4:22:f4:27:8e:47:
                    c9:c4:23:54:2a:c4:7f:62:91:38:40:cd:7f:11:3a:
                    f2:7e:70:3e:7e:0e:c0:df:09:30:1d:8f:4c:61:11:
                    dc:ec:31:d9:1f:b3:ad:d4:12:63:27:80:65:63:ac:
                    f8:9c:12:64:d2:96:e9:b5:1b:6b:f1:7d:cb:06:a7:
                    9e:e8:52:64:dc:a6:69:62:e8:72:d5:cc:3b:84:87:
                    dd:8c:ef:17:8c:97:40:67:86:60:10:df:29:e9:56:
                    d8:e8:aa:92:6f:52:e2:dc:fd:4e:51:3b:f6:4d:51:
                    5d:5e:d0:a6:09:28:33:05:d7:b6:d3:27:27:57:5b:
                    a3:08:a0:ec:18:a3:9b:9b:10:c1:90:40:97:9d:29:
                    18:f3:1b:2e:19:44:5e:2b:e2:86:82:68:30:67:b9:
                    60:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:12:C2:6E:FB:16:E2:FF:F8:89:6B:F3:E6:58:C4:AC:85:70:C2:D1
            X509v3 Authority Key Identifier:
                keyid:76:78:62:5D:91:54:FC:DF:1B:00:0A:43:D1:F8:92:FB:1D:58:83:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhiXZFU_N8bAApD0fiS-x1Yg2k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DF5/F4FD227AA63211EBB3E17969C4F9AE02/dnhiXZFU_N8bAApD0fiS-x1Yg2k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:75:bd:97:cf:3e:0b:38:00:74:76:46:d2:d8:da:09:8c:77:
         d3:aa:b7:dc:a2:93:90:84:85:bc:f5:00:81:61:a4:e7:a8:35:
         61:9e:98:b3:ee:4a:64:cc:0e:96:ed:3a:44:88:60:a8:fa:02:
         1e:fc:e2:87:26:95:b6:d2:9e:01:35:6d:57:3a:ab:1f:7f:81:
         7d:51:61:d8:22:94:96:b6:d0:8d:fc:e7:a0:b9:0c:d8:c6:72:
         67:d5:9b:3b:ba:49:4b:4c:6f:28:d8:df:0a:c3:20:69:11:3e:
         5e:a4:57:b5:89:b1:9b:e2:4e:0d:6d:c7:94:ff:25:39:e5:86:
         ae:2a:bd:75:75:ea:56:1c:c8:9b:8f:f8:74:5b:eb:de:fe:eb:
         fc:79:ce:1e:0e:15:af:25:bf:04:b9:88:80:1a:44:3e:f8:42:
         57:54:d2:23:63:c2:13:4c:7d:41:f6:10:6e:04:75:b2:a2:7b:
         9e:74:d4:e8:4a:fc:1a:9c:b7:5e:0f:91:b9:a9:35:44:1c:d1:
         39:b7:19:f6:13:b5:3c:fc:16:f5:12:23:11:23:f3:c4:3a:fc:
         32:53:ac:b0:fc:2a:1e:ac:56:dc:92:b1:46:5d:81:4f:60:19:
         a3:b9:9c:56:a9:f9:66:bb:64:14:ef:d7:53:1f:9d:71:97:c1:
         ec:47:76:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:39:30 2024 by rpki-client on console-fra.rpki-client.org